CNNVD-202512-1507 Information
Dec 09, 2025
cve
CNNVD ID
CNNVD-202512-1507
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
PHOENIX CONTACT FL SWITCH是德国菲尼克斯电气(PHOENIX CONTACT)公司的一款工业级以太网交换机。 Phoenix Contact FL SWITCH 3.50之前版本存在信任管理问题漏洞,该漏洞源于未记录的UART端口和硬编码凭据,可能导致文件系统部分读取。
Description (English)
PHOENIX CONTATT FL SWITCH is an industrial Ethernet switchboard of PHOENIX CONTACT, Germany. The previous version of Phoenix Contact FL SWITCH 3.50 had a trust management management gap, which originated from unrecorded UART ports and hard-coded certificates, which could lead to partial reading of the file system.
Hazard Level
High
Vulnerability Type
信任管理问题
Affected Vendor
菲尼克斯电气
Published
2025-12-09
Last Modified
2026-02-24
References
https://certvde.com/de/advisories/VDE-2025-071
Patch
https://www.phoenixcontact.com/en-us/company/phoenix-contact-group
Share on: